Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/Z04CnUcTel20aggV0GE12Ud2RVo.roa
File: Z04CnUcTel20aggV0GE12Ud2RVo.roa (raw, json)
Hash identifier: SOCDaf6xn6jMZb7Z56p8lDq7YWhQB0koGOq/1qsqj48=
Subject key identifier: 67:4E:02:9D:47:13:7A:5D:B4:6A:08:15:D0:61:35:D9:47:76:45:5A
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 057D069A
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/Z04CnUcTel20aggV0GE12Ud2RVo.roa
Signing time: Sat 01 Jan 2022 05:01:17 +0000
ROA not before: Sat 01 Jan 2022 05:01:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56382
IP address blocks: 185.244.27.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92079770 (0x57d069a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jan 1 05:01:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=674e029d47137a5db46a0815d06135d94776455a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:d5:ae:c5:d9:37:dc:4e:7e:14:be:fb:79:82:
8d:a0:90:f4:ce:5c:37:41:45:7c:67:c0:9e:57:c8:
77:53:37:fc:06:22:ab:c8:2f:1e:f9:76:37:39:ef:
48:7b:a0:3c:27:97:a7:ca:5e:50:fb:15:79:b7:66:
68:ba:ff:21:6f:5f:6d:a7:63:16:50:64:d6:fc:45:
09:82:7b:98:02:f4:a9:1b:21:df:e6:de:71:46:7b:
98:a2:f7:72:05:3e:0f:22:22:9c:5e:9a:7b:6e:45:
61:59:46:c3:bc:88:81:de:18:ed:97:13:25:6c:00:
8a:9d:73:b8:12:1f:b2:f7:11:c8:5b:5a:74:ad:52:
93:ac:5c:11:71:4f:2e:df:dd:73:4c:b3:e9:c1:3d:
2a:68:15:ad:dc:85:4c:98:d9:65:4b:ed:79:12:93:
7e:93:9c:33:3c:96:d8:96:37:e2:18:c0:9b:0a:5d:
8b:93:20:02:67:71:c6:8f:92:2e:f4:1a:72:19:ef:
e3:84:c5:cc:f6:30:89:6f:e4:4e:6b:5d:5d:df:07:
9c:c2:f8:b8:62:c4:33:90:f1:a6:ef:c3:dc:ea:2e:
b2:c2:cd:6a:b7:45:88:2c:0c:f8:78:ca:e6:6d:d2:
58:21:89:0f:a8:7b:42:7b:a3:8e:fa:32:5b:cf:98:
dc:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:4E:02:9D:47:13:7A:5D:B4:6A:08:15:D0:61:35:D9:47:76:45:5A
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/Z04CnUcTel20aggV0GE12Ud2RVo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.27.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:a2:33:83:3c:ed:58:e0:ca:99:8c:dd:56:54:d9:3a:a3:9a:
b6:34:90:8a:a3:25:01:da:98:23:b5:40:39:87:e4:7e:46:af:
78:8f:fc:5b:03:90:59:df:a6:e8:b2:9f:22:7d:02:3d:c6:1f:
1a:6f:3a:d6:c3:7e:eb:e9:db:98:6d:08:92:38:65:4e:75:bb:
b3:b9:f9:96:4a:db:65:88:32:41:a4:02:65:f0:d1:0b:40:0d:
98:72:78:23:c1:ab:fd:06:b4:b4:0b:ce:4a:89:fb:e6:b1:a5:
a3:cb:a7:a5:59:a0:a8:85:5d:1f:02:9b:cf:ff:70:92:55:9d:
52:74:37:f0:09:07:b3:33:7b:a7:4a:61:88:5b:5f:27:b7:ef:
f5:4a:1d:67:ee:0a:67:66:f5:f7:91:43:f4:ce:e4:44:d4:07:
f2:9d:72:0d:6d:21:7f:6a:a1:d8:23:96:ee:e1:5e:ca:45:0b:
76:f6:e4:df:1d:a1:b6:74:3d:9b:0f:7a:6d:be:2a:ac:f1:c4:
e5:1f:20:2d:34:be:09:92:6a:31:09:30:f4:d7:c6:9e:ae:c1:
21:f6:13:6d:21:81:87:62:96:1a:61:73:b2:a5:b2:60:f6:62:
c0:08:48:e9:35:c4:f4:23:ce:49:4d:26:77:e7:35:2a:0b:6c:
7a:d8:f2:3a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBX0GmjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
M2M2OWQwNDU4MzUwMGM1ZWY4MTEzNjgzMTIzNzU5M2UwYmI4NmNlMB4XDTIyMDEw
MTA1MDExN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjc0ZTAyOWQ0NzEz
N2E1ZGI0NmEwODE1ZDA2MTM1ZDk0Nzc2NDU1YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAO7VrsXZN9xOfhS++3mCjaCQ9M5cN0FFfGfAnlfId1M3/AYi
q8gvHvl2NznvSHugPCeXp8peUPsVebdmaLr/IW9fbadjFlBk1vxFCYJ7mAL0qRsh
3+becUZ7mKL3cgU+DyIinF6ae25FYVlGw7yIgd4Y7ZcTJWwAip1zuBIfsvcRyFta
dK1Sk6xcEXFPLt/dc0yz6cE9KmgVrdyFTJjZZUvteRKTfpOcMzyW2JY34hjAmwpd
i5MgAmdxxo+SLvQachnv44TFzPYwiW/kTmtdXd8HnML4uGLEM5Dxpu/D3OoussLN
ardFiCwM+HjK5m3SWCGJD6h7QnujjvoyW8+Y3GkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRnTgKdRxN6XbRqCBXQYTXZR3ZFWjAfBgNVHSMEGDAWgBRzxp0EWDUAxe+B
E2gxI3WT4LuGzjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2M4YWRCRmcxQU1YdmdSTm9NU04xay1DN2hzNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzgvNmY2Y2UyLWU2ZWUtNGUyYS05MDVkLWY5Y2IwYTdiMjA2Yy8x
L1owNENuVWNUZWwyMGFnZ1YwR0UxMlVkMlJWby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzgv
NmY2Y2UyLWU2ZWUtNGUyYS05MDVkLWY5Y2IwYTdiMjA2Yy8xL2M4YWRCRmcxQU1Y
dmdSTm9NU04xay1DN2hzNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALn0GzANBgkqhkiG9w0BAQsFAAOC
AQEAXaIzgzztWODKmYzdVlTZOqOatjSQiqMlAdqYI7VAOYfkfkaveI/8WwOQWd+m
6LKfIn0CPcYfGm861sN+6+nbmG0IkjhlTnW7s7n5lkrbZYgyQaQCZfDRC0ANmHJ4
I8Gr/Qa0tAvOSon75rGlo8unpVmgqIVdHwKbz/9wklWdUnQ38AkHszN7p0phiFtf
J7fv9UodZ+4KZ2b195FD9M7kRNQH8p1yDW0hf2qh2COW7uFeykULdvbk3x2htnQ9
mw96bb4qrPHE5R8gLTS+CZJqMQkw9NfGnq7BIfYTbSGBh2KWGmFzsqWyYPZiwAhI
6TXE9CPOSU0md+c1KgtsetjyOg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:47 2023 by rpki-client on console-ams.rpki-client.org